HPE Community
Operating System - HP-UX
1837984 Members
2748 Online
110124 Solutions
New Discussion

Trusted system: password policy

 
SOLVED
Go to solution
j773303
Super Advisor

‎09-14-2004 01:33 PM

‎09-14-2004 01:33 PM

Trusted system: password policy

I set the /etc/default/security
PASSWORD_HISTORY_DEPTH=3

When user executes the passwd command, this file is checked to verify that the user's newly chosen password hasn't been used 3 times previously. Is it possbile only to set for some use has this function, and the other user can change password for any word. Thanks.
Hero
0 Kudos
Reply
9 REPLIES 9
Sridhar Bhaskarla
Honored Contributor

‎09-14-2004 02:03 PM

‎09-14-2004 02:03 PM

Solution

Re: Trusted system: password policy

Hi,

This is a system wide file. So rules in this file will be applicable to all the users.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
Reply
D Block 2
Respected Contributor

‎09-14-2004 02:46 PM

‎09-14-2004 02:46 PM

Re: Trusted system: password policy

dude, do a search on TRUSTED in this forum. this might help.

also, check out link:

http://docs.hp.com
and do a search on TRUSTED

good luck,
Tom

Golf is a Good Walk Spoiled, Mark Twain.
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎09-14-2004 02:49 PM - last edited on ‎09-16-2024 02:28 AM by

‎09-14-2004 02:49 PM - last edited on ‎09-16-2024 02:28 AM by

Re: Trusted system: password policy

The man page for security gives you the details. All of the items in /etc/default/security are global and apply to all users.


Bill Hassell, sysadmin
Reply
D Block 2
Respected Contributor

‎09-14-2004 02:58 PM

‎09-14-2004 02:58 PM

Re: Trusted system: password policy

Bill, its great to see you again on this forum.. I do hope j773303 gives you the POINTs ..

best wishes..
Golf is a Good Walk Spoiled, Mark Twain.
0 Kudos
Reply
j773303
Super Advisor

‎09-14-2004 03:35 PM

‎09-14-2004 03:35 PM

Re: Trusted system: password policy

Hi Bill,
Which command can view the details?
man ??? Thanks.
Hero
0 Kudos
Reply
Michael Tully
Honored Contributor

‎09-14-2004 03:52 PM

‎09-14-2004 03:52 PM

Re: Trusted system: password policy

The man page is:

# man 4 security
Anyone for a Mutiny ?
Reply
Muthukumar_5
Honored Contributor

‎09-14-2004 04:28 PM

‎09-14-2004 04:28 PM

Re: Trusted system: password policy

Passwd history change is based on global users. It will get effect on trusted mode only.

Passwd change on getting expiration will check the old history of passwd's maintained as encrypted one.

As we knew we can not read the passwd information ( without abnormal hack ) there. I hope no system commmands to view passwd history changes there.

passwd history setting informations are enabled in secutiry file. history policy detailed in passwd.1 man page.

Easy to suggest when don't know about the problem!
0 Kudos
Reply
Bharat Katkar
Honored Contributor

‎09-14-2004 04:59 PM

‎09-14-2004 04:59 PM

Re: Trusted system: password policy

HI,
See the doc attached on Trusted Systems.
Thought it would help.
Regards,
You need to know a lot to actually know how little you know
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎09-15-2004 12:13 AM

‎09-15-2004 12:13 AM

Re: Trusted system: password policy

The man page for security (man security) is complete only when you have the latest security patches. It was completely missing in 11.00 for a long time (even though many of the directives were active). If you don't have an 11i system with the latest security patches, you can read the man page at http://docs.hp.com. I've attached a heavily commented security file that will help. Note that the majority of directives apply only to Trusted systems and that spelling is imperative. There is *NO* feedback when a spelling error occurs...the directive simply does nothing.

I would strongly recommend downloading the security patch checker so you can not only get up to date but also view the integrity of all your pacthes.


Bill Hassell, sysadmin
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.